ГлавнаяУязвимости → CVE-2023-51059
8.8высокая

CVE-2023-51059

Описание

An issue in MOKO TECHNOLOGY LTD MOKOSmart MKGW1 BLE Gateway v.1.1.1 and before allows a remote attacker to escalate privileges via the session management component of the administrative web interface.

Затрагиваемое ПО
Mokosmart Mkgw1 gateway firmwareMokosmart Mkgw1 gateway
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/sbaresearch/advisories/tree/public/2022/SBA-ADV-20220120-01_MOKOSmart_MKGW1_Gateway_Improper_Session_Managementhttps://www.mokosmart.com/wp-content/uploads/2019/10/GS-gateway.pdfhttp://seclists.org/fulldisclosure/2024/Jan/6https://github.com/sbaresearch/advisories/tree/public/2022/SBA-ADV-20220120-01_MOKOSmart_MKGW1_Gateway_Improper_Session_Managementhttps://www.mokosmart.com/wp-content/uploads/2019/10/GS-gateway.pdf